Apple Chips Can Be Hacked To Leak Secrets From Gmail, ICloud, and More

An anonymous reader quotes a report from Ars Technica: Apple-designed chips powering Macs, iPhones, and iPads contain two newly discovered vulnerabilities that leak credit card information, locations, and other sensitive data from the Chrome and Safari browsers as they visit sites such as iCloud Calendar, Google Maps, and Proton Mail. The vulnerabilities, affecting the CPUs in later generations of Apple A- and M-series chip sets, open them to side channel attacks, a class of exploit that infers secrets by measuring manifestations such as timing, sound, and power consumption. Both side channels are the result of the chips' use of speculative execution, a performance optimization that improves speed by predicting the control flow the CPUs should take and following that path, rather than the instruction order in the program. [...]

The researchers published a list of mitigations they believe will address the vulnerabilities allowing both the FLOP and SLAP attacks. They said that Apple officials have indicated privately to them that they plan to release patches. In an email, an Apple representative declined to say if any such plans exist. "We want to thank the researchers for their collaboration as this proof of concept advances our understanding of these types of threats," the spokesperson wrote. "Based on our analysis, we do not believe this issue poses an immediate risk to our users." FLOP, short for Faulty Load Operation Predictor, exploits a vulnerability in the Load Value Predictor (LVP) found in Apple's A- and M-series chipsets. By inducing the LVP to predict incorrect memory values during speculative execution, attackers can access sensitive information such as location history, email content, calendar events, and credit card details. This attack works on both Safari and Chrome browsers and affects devices including Macs (2022 onward), iPads, and iPhones (September 2021 onward). FLOP requires the victim to interact with an attacker's page while logged into sensitive websites, making it highly dangerous due to its broad data access capabilities.

SLAP, on the other hand, stands for Speculative Load Address Predictor and targets the Load Address Predictor (LAP) in Apple silicon, exploiting its ability to predict memory locations. By forcing LAP to mispredict, attackers can access sensitive data from other browser tabs, such as Gmail content, Amazon purchase details, and Reddit comments. Unlike FLOP, SLAP is limited to Safari and can only read memory strings adjacent to the attacker's own data. It affects the same range of devices as FLOP but is less severe due to its narrower scope and browser-specific nature. SLAP demonstrates how speculative execution can compromise browser process isolation.

Well that's not good

[AlanObject]

I guess I'll hang on to my 2019 Intel-architecture Macbook Pro for a while longer, then.

And I wanted to run AI models on my laptop. Bummer.

Re:

[DamnOregonian]

I guess I'll hang on to my 2019 Intel-architecture Macbook Pro for a while longer, then.

Uh, lol.
I've got bad news for you if you're looking to dodge speculative execution side channels that way... Particularly since I don't think they're still updating those?

Re:Well that's not good

[MachineShedFred]

Except Intel fucked this up first, and apparently Apple didn't learn anything from their fuckup and did basically the same shit.

Re:

[Zontar_Thing_From_Ve]

Except Intel fucked this up first, and apparently Apple didn't learn anything from their fuckup and did basically the same shit.

I was hoping I might somehow have mod points to give you for this, but maybe others who do will mod you up.

Re:Well that's not good

[DamnOregonian]

It's really not that simple.
Speculative side channels are a pandora's box. You aren't closing it.
Every CPU made going forward is going to be vulnerable to these things, and people will keep finding them, and we will keep fixing them.

Re:Well that's not good

[parityshrimp]

Speculative side channels are a pandora's box. You aren't closing it.
Every CPU made going forward is going to be vulnerable to these things, and people will keep finding them, and we will keep fixing them.

And no one is going to spend the time and expense to use formal methods to prove that the speculative execution mechanisms are secure.

Being honest here. I think they could do it with formal methods, but time to market will win out.

Re:

[DamnOregonian]

Oh- I agree. It's certainly possible to create a formal verification framework. But like you, I don't see that happening.

Re:

[radarskiy]

Formal methods still depend on a specification that covers the entire space you want to verify. The divider that resulted in the FDIV bug was formally verified; it was just verified against a specification that was wrong.

Re:Well that's not good

[AmiMoJo]

I haven't looked at the detail of Apple's flaw, but in Intel's case it was a conscious decision not to roll back everything that was done speculatively, to improve performance. They thought that what was leaking was not important. AMD did it properly, so while there have been some issues around their speculative execution technology, they have been far less severe and the mitigations haven't had a devastating effect on performance.

Re:

[DamnOregonian]

but in Intel's case it was a conscious decision not to roll back everything that was done speculatively, to improve performance

In which Intel's case? Both Intel and AMD parts have been vulnerable to literally dozens of speculative side channel attacks, now.
Some were accidents, some were deliberate decisions- all were predicated upon what was considered an impossibility- that someone could probe state without direct access to it. That assumption was wrong, and I don't consider any decisions made before the discovery otherwise as erroneous.

They thought that what was leaking was not important. AMD did it properly, so while there have been some issues around their speculative execution technology, they have been far less severe and the mitigations haven't had a devastating effect on performance.

This is absurd.
RETBLEED was literally caused by them trying to say their RETPOLINE worked, wh

Re:

[ToasterMonkey]

I haven't looked at the detail of Apple's flaw, but in Intel's case it was a conscious decision not to roll back everything that was done speculatively, to improve performance. They thought that what was leaking was not important. AMD did it properly, so while there have been some issues around their speculative execution technology, they have been far less severe and the mitigations haven't had a devastating effect on performance.

The processor did roll everything back, or that's not how information was leaked anyway.

It was like there's a mystery box with a name in it at a party you crashed. You ask hey is Bill around? They look around and say who the hell is Bill? Oh forget it.
Can you tell whosever's box this is to go move their car? They peek in the box and eye the room, "No, you're a stranger." They think you want the box.

You bore them to death with a very long story to reset their memory.

Hey is Charlie around? Someone glances aro

Re:

[radarskiy]

"They thought that what was leaking was not important."

Show us where you had identified evicting unprivileged data from a cache as a leak that predates the flaw in question.

They didn't think leaking was unimportant; they thought they weren't leaking anything.

Kill -9

[MrKaos]

Except Intel fucked this up first, and apparently Apple didn't learn anything from their fuckup and did basically the same shit.

This was the criticism the US Nuclear Submarine program had of NASA when they boasted of the Columbia accident "No one operates high performance machinery in extreme environments the way we do". Their response was "We put 5000 personnel into studying the Challenger disaster and improving our processes - how many did you allocate?".

The lessons the Submarine program have to teach IT about developing cutting edge technology come from listening to dissenting opinion. Signs of agreement usually meant that a t

Re:

[WankerWeasel]

Apple has already said they'll patch the issue shortly and there's no evidence it's been exploited in the wild.

Re:

[DamnOregonian]

Question is whether or not there'll be a performance cost.
The worst part of this speculative execution side-channel hell is that it causes a degradation of performance over time as they're found and fixed. It contributes to premature hardware obsolescence.

Re:

[DamnOregonian]

I agree. it has the potential to become a perverse incentive.

Re:

[Fly Swatter]

Don't worry, a class action lawyer or three are already actively working to find a client. Everyone will get their $1.00 as compensation.

Aim?

[jythie]

I've been wondering about just how directable these attacks are. They tend to be described in terms of all the things that might be in memory, but gloss over how much control an attacker really has to direct the exploit to something specific, or really the whole sequence of 'specific' that would be needed to pull information out of running programs.

Re:

[Zero__Kelvin]

I agree that we are talking about speculative exploits of speculative execution, but all implementation begins with speculation.

Re:

[Depili]

Actually reading the paper tells that the attacks are quite limited on what they can access and can leak memory at around 0,4 bits per second (bits, not bytes). So one either needs to know exactly where to look or spend ages searching for the stuff.

Re:

[organgtool]

The attack was just released. Give security experts time to expand upon it and this will only get worse.

Re:

[organgtool]

I've been wondering about just how directable these attacks are

I've wondered the same thing myself, but after thinking about it more I realized how valuable this attack could be. Governments around the world would have the ability to attack public services hosted on cloud servers and extract keys and passwords to accounts with extremely valuable information. With that in mind, we have to assume they're dedicating tons of resources to exploiting this and that they've already gotten much further along than

About to buy an M4..

[mattr]

Welp, at least they'll patch it. Hopefully that sticks.. these speculation flaws seem to be tough to address. ;) But tbh if I am just say running a local LLM and not surfing the web it would be nice if we could turn off for specific apps a fix that drops 10% of its performance. Just sayin'.

New OS update out now....

[bsdetector101]

Maybe for this...

Potato chips dont have this problem

[Big Hairy Gorilla]

And are a.lot cheaper.
Taste better too.

How Do We Not Have Secure Memory?

[organgtool]

I'm not an expert on computer hardware or OS implementations, but it boggles my mind that we don't have a way of securing memory access for sensitive information. We already have TPM for long-term storage of sensitive data, how do we not have something similar for storing sensitive data temporarily? It doesn't seem like it would be that difficult to create a dedicated module with a small amount of memory and very controlled methods of accessing that data. The OS could implement syscalls to read and write